Passphrase Guidelines

Here are some suggestions for choosing good passphrases (or Kerberos passwords ) and static passwords. Passphrases and passwords are critical elements of network and computer security.

Kerberos password (HPCMP Systems)

Memorize your passphrase! This should be relatively easy. You only need one passphrase for all ARSC systems and it can be up to 255 characters long. You might develop a system or algorithm for generating new passwords.

Make it long... use several words, punctuation marks, numbers, etc... The basis of your passphrase can be something well-known, but give it a personal twist. Possible sources:

Song titles, events, people, foods, sports, compounds, planets?

Expressions.

Anagrams, palindromes, rhymes.

Example passwords:

bride. of the Father

w wx wxy wxyz !!!!!

lavender.ratatouille or magenta.oatmeal or green.mashed potatoes

Que c'est embetant!!!

Static Passwords

Remembering your passwords

Memorize your passwords -- avoid writing them down.

Others may gain access to your hardware. Don't store passwords in the function keys of a terminal, the memory of a modem, or in the macros or scripts of a PC connection application.

Avoid storing passwords unencrypted on your system.

Inventing and remembering good passwords

Invent a private formula. Its use will become second nature though it produces absurd looking passwords that will be unguessable by anyone else. Here are a couple of examples (don't use them -- they're no longer private!) :

Example 1 -- for word lovers:

Begin with words containing double letters, like llama, dizzy, apogee

Replace the doubled letters with any three special characters

Passwords generated: $*$ama , di$*$y , and apog$*$ .

Simply pick another double-letter word to generate a new password.

Example 2 -- for animal lovers:

Pick 5-letter animal names, like snake, stilt, shrew , etc...

Break them up using 2-digit numbers, like 11, 13, 17 , etc...

End by duplicating and shifting the last letter.

Passwords generated: sn11akeE , st13iltT , and sh17rewW .

Pick a new animal when you need a new password.

Avoid obvious passwords. Birthdays, addresses, social security numbers, names, computer names, and words found in a dictionary are easily cracked. You can use words and names, but only if you shuffle them (e.g., RED and blue --> blREDue), rearrange them (e.g., joseph --> phsejo), unglue them (e.g., mazda --> m+az-da), or otherwise obscure them. Simply appending or prepending a digit is no longer adequate.

Use both upper- and lower-case letters, and anything else you find on your keyboard!

Maintaining Passphrase Privacy

Don't let anyone else use your account.

If you must share data, use Unix permission groups to let members of your group have access to your data directories. If you need help setting this up, call ARSC Consulting (907-450-8602).

Don't let anyone see your passphrase or watch as you type it in.

Lock your screen or logout whenever you leave your workstation.

Passphrase Expiration

Change your passphrase frequently: at least every six months.

Don't reuse old passphrases.

Events

ARSC Office has Relocated

As of November 3, 2014, the ARSC office has moved to the Elvey Building, suite 508, on the UAF campus. ARSC staff and User Support are available Monday through Friday 8am to 5pm in Elvey 508 . The physical address for the new location is 903 Koyukuk Drive. Phone numbers, email addresses, and all other ARSC services have remained the same. The HPC clusters and archival storage silo will remain in the Butrovich Computing Facility.

Connect with ARSC

The University of Alaska Fairbanks is an affirmative action/equal
opportunity employer and educational institution and is a part of the University
of Alaska system.
Arctic Region Supercomputing Center (ARSC) |PO Box 756020, Fairbanks, AK 99775 | voice: 907-450-8602 | fax: 907-450-8601 | Supporting high performance computational research in science and engineering with emphasis on high latitudes and the arctic.
For questions or comments regarding this website, contact info@arsc.edu